03/17/2008 11:43 FAI 216 698 d731 
10/083.010 



AMIN, & TUROCY LLP, 



il002/012 



MS 1 9043 8.0 1/MSFTP3 1 9US 



Amendments to the Claims 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1 . (Currently Amended) A computer implemented system for processing credentials, 
comprising the following computer executable components: 

a wrapper that packages credentials associated with resources of a service; and 
a pass-phrase employed in connection with generation of the wrapper via a cryptographic 
wrapping key, the pass-phrase employed to facilitate access to the credentials, the credentials 
employed to facilitate access to the resources of the service, and the pass-phrase distributed 
separately from the credentials. 

2. (Canceled), 

3. (Original) The system of claim 1 , the credentials providing stronger encryption than the 
pass-phrase. 

4. (Original) The system of claim 3, the credentials providing greater than 100 bits of 
encryption. 

5. (Original) The system of claim 3, the pass-phase having human-readable alpha-numeric 
characteristics. 

6. (Original) The system of claim 1 , further comprising one or more partners to request 
access to the resources. 

7. (Original) The system of claim 6, at least one of the partners includes a credential store to 
manage the credentials. 
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S. (Original) The system of claim 7, the at least one partner distributes the credentials to at 
least one other partner in order to facilitate access to the resources of the service. 

9. (Origiixal) The system of claim 1^ the pass-phase is at least one of spoken, displayed on a 
screen a-nri typed. 

1 0. (Original) The system of claim 1, further comprising at least one of a Secure Socket 
Layer (SSL), a Virtual Private Network (VPN), and a dedicated line to establish connections to 
the service. 

1 1 . (Original) The system of claim 1 0, further comprising a remote login utilizing a basic 
authentication over the SSL. 

12. (Original) The system of claim 10, further comprising at least one SSL certificate to 
establish cQunections to the service. 

13. (Original) The system of claim 1, the services are associated with a platform provisioning 
service. 

14. (Original) The system of claim 13, the platfomi provisioning service associated with at 
least one partner, the partner including at least one of a tenant and a service provider to form at 
least one of a billing, a financial, and an accounting service. 

15. (Original) The system of claim 14, the partner employs the pass-phrase to unlock the 
credentials and achieve access to the platform provisioning services. 

16. (Original) The system of claim 14, at least one of the platform provisioning service and 
the partner maintain an account to process the credentials, the at least one of the platform 
provisioning service and the partner employ a Universal Resource Locator (UKL) to present the 
credentials to the account. 
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1 7. (Original) A computer-readable medium having computer-executable instructionis stored 
thereon to perform at least one of processing and the generation of the wrapper and the pass- 
phrase of claim 1. 

1 8. (Previously Presented) A method to fecilitate a security connection between entities, 
comprising: 

generating a strong password; 
generating a pass-phrase; 

wrapping the password cryptographically via Ae pass-phrase; 
storing the wrapped password in an executable; and 

transmitting the executable and the pass-phrase to a system via different communications 
mediums. 

19. (Canceled). 

20. (Currently Amended) The method of claim 18 further comprising employing the 
pass-phrase to unlock the strong password stored in the executable, the strong password 
employed to establish a trust relationship with an entity. 

2 1 . (Original) The method of claim 1 8 , further comprising at least one of: 
requesting a Secure Sockets Layer (SSL) connection; and 
presenting an SSL certificate in response to the request. 

22. (Original) The method of claim 21 , further comprising at least one of: 
verifying an SSL certificate; 

requesting a Universal Resource Locator (URL) from a listener; 
presenting authentication credentials to a receiver; and 
logging in a caller to an account 

23 . (Original) The method of claim 1 8, further comprising limiting access to the executable. 
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24. (Original) The method of claim 18, further comprising at least one of: 
setting up account privileges; 

designating account contacts; and 
verifying the contacts. 

25. (Original) The method of claim 24, fimher comprising verbally communicating the pass- 
phrase. 

26. (Original) The method of claim 25, further comprising transmitting and storing the 
password and the pass-phrase separately. 

27. (Previously Presented) A computer executable system to facilitate a security relationship 
between parties, comprising: 

computer implemented means for generating a password; 
computer implemented means for generating a pass-phrase; 
computer implemented means for generating a package; 
computer implemented means for storing the password in package; aad 
computer implemented means for locking the package with the pass-phrase; and 
computer implemented means for transmitting the package and the pass-phrase to a 
system via diifferent communications mediums. 

28. (Currently Amended) A computer-readable medium having stored thereon a signal to 
communicate security data between at least two nodes, comprising: 

a first data packet comprising: 

a password component employed to establish a trust relationship between at least 
two nodes; and 

a wrapper field employed to encapsulate the password, the wrapper field 
mediating access to the password; and 
a second data packet comprising: 
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a pass-phrase employed to generate and unlock the wrapper field, the pass-phrase 
distributed separately from the wrapper field. 

29. (Original) The signal of claim 28, wrapper field being cryptogr^hicaUy weaker than the 
password. 

30. (Canceled). 

3 1 . (Previously Presented) A computer implemented system to establish a trust relationship, 
comprising the following computer executable components: 

a service that controls one or more resources, the service issues credentials to facilitate 
access to the resources; 

a wrapper generated by llie service to package the credentials; and 
a pass-phrase employed to generate the wrapper and mediate access to the service, the 
pass-phrase distributed separately from the credentials. 

32. (Original) The system of claim 31, the service is a provisioning service thai establishes a 
trust relationship between one or more partners via the credentials. 

3 3 . (Currently Amended) A computer-readable medium having stored thereon a data 
structure, comprising: 

a first data field containing cryptogr^hic data associated with a password; 

a second data field containing cryptographic data associated with a pass-phrase, the pass- 
phrase employed to mitigate exposure of the password to non-trusted entities; and 

a third data field containing a wrapper employed to encapsulate the password, the 
wrapper generated by the nass-nhrase and distributed separately from the pass-phrase to facilitate 
a security connection between entities. 
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